package com.dragon.auth.support.core;

import com.dragon.common.core.constant.SecurityConstants;
import com.dragon.common.security.service.DragonUser;
import org.springframework.security.oauth2.server.authorization.token.OAuth2TokenClaimsContext;
import org.springframework.security.oauth2.server.authorization.token.OAuth2TokenClaimsSet;
import org.springframework.security.oauth2.server.authorization.token.OAuth2TokenCustomizer;

/**
 * @date: 2024/8/8 00:10
 * @author: ybl
 */

public class CustomeOAuth2TokenCustomizer implements OAuth2TokenCustomizer<OAuth2TokenClaimsContext> {

    /**
     * Customize the OAuth 2.0 Token attributes.
     * @param context the context containing the OAuth 2.0 Token attributes
     */
    @Override
    public void customize(OAuth2TokenClaimsContext context) {
        OAuth2TokenClaimsSet.Builder claims = context.getClaims();
        claims.claim(SecurityConstants.DETAILS_LICENSE, SecurityConstants.PROJECT_LICENSE);
        String clientId = context.getAuthorizationGrant().getName();
        claims.claim(SecurityConstants.CLIENT_ID, clientId);
        // 客户端模式不返回具体用户信息
        if (SecurityConstants.CLIENT_CREDENTIALS.equals(context.getAuthorizationGrantType().getValue())) {
            return;
        }

        DragonUser dragonUser = (DragonUser) context.getPrincipal().getPrincipal();
        claims.claim(SecurityConstants.DETAILS_USER, dragonUser);
        claims.claim(SecurityConstants.DETAILS_USER_ID, dragonUser.getId());
        claims.claim(SecurityConstants.USERNAME, dragonUser.getUsername());
    }

}
